**SSL Stripping:** Intercepting an HTTP-to-HTTPS redirect and keeping the connection on HTTP, enabling eavesdropping. HSTS (HTTP Strict Transport Security) mitigates this. - **Heartbleed (CVE-2014-0160):** A buffer over-read vulnerability in OpenSSL that allowed attackers to read up to 64KB of the s